Antimalware Tool (AntimalwareTool) Virus Removal Guide

Virus Type: Rogue Security Application
Threat Level: 8 / 10

Antimalware Tool, also known as AntimalwareTool, is a new fake computer antimalware application. Antimalware software provides various methods to protect the user’s computer; for example, it could have computer tools such as anti-virus, anti-spyware, and a internet firewall. However, Antimalware Tool is fake. Antimalware Tool was released in late March 2011. Antimalware Tool is part of a family of fake antivirus programs; the last version of this fake antivirus program was called Security Defender. Security Defender was released in Fabruary 2011. The fake antivirus program is also very similar in design to Best Malware Protection. The main different in the look; however, the functionality is very similar.

Antimalware Tool claims to offer the ability to scan the computer. Antimalware Tool also claims to offers a malware protection center (to view more information about malware protection online) and some other features. Threats which Antimalware Tool claims to be able to remove include TrojanDownloader: Win32/Renos.JI, PWS: Win32/Yahoopass.A, and Spammer: Win32/Tedroo.AA. Antimalware Tool is generally installed without user permission through the use of a trojan horse, which is downloaded through a security flaw while browsing the internet through a web browser. A security flaw can occur in the web browser or in any application used in the web browser such as a web application. Antimalware Tool is also transmitted through fake online scanner pages; the user is generally redirected from a legitimate website to the fake scanner page. Antimalware Tool attempts to be legitimate by making it’s logo look similar to the logo of Microsoft. However, Antimalware Tool is fake. Antimalware Tool main executable is generally a series of random letters.

Below is our recommended removal tool for Antimalware Tool. The removal tool has been rated 5 cows out of 5 by Tucows and was previously CNET’s Editor’s Choice. Feel free to download it below.

download

If you are unable to run the removal tool, or are unable to run any programs in general, you may need to stop the processes associated with Antimalware Tool with task manager. If task manager has been blocked by Antimalware Tool, try using Process Explorer.

Antimalware Tool Removal Tip - Antimalware Tool doesn’t tend to block many programs whereas most fake antivirus programs tend to block a majority of programs. Therefore, the user can either choose to remove Antimalware Tool using antivirus / antispyware software or manually remove it. However, make sure to update the virus definitions before scanning for Antimalware Tool.

Antimalware Tool, like many other fake antivirus programs, will create a series of warnings and pop ups. Generally, the purpose of these pop ups are to scare the user into purchasing the fake program because the user will generally want to protect their computer. Antimalware Tool may also create these warnings in an attempt to make it look legitimate. A couple of these warnings from Antimalware Tool can be found below.

“Antimalware Tool Firewall Alert

Antimalware Tool has prevented a program from accessing the Internet.

“Iexplore.exe” is infected with Trojan. This worm has tried to use “iexplore.exe” to connect to remote host and send your credit card information.

Name: MS Windows Operating System
Location: “C:\Program Files\Internet Explorer\iexplore.exe”
Company: Microsoft Company

Yes. I want to activate Antimalware Tool.
No, continue unprotected.”

“Antimalware Tool Firewall Alert

Security Alert
Your computer is being attacked from a remote machine!

Block Internet access to your computer to prevent system infected.
Attacker IP: 101.123.34.123
Attack type: RCPT exploit”

“Antimalware Tool Firewall Alert

Warning
Keylogger activity detected!
Your account in social network is under attack. Click here to block unauthorized modification by removing threats (Recommended).”

“Antimalware Tool

Your computer is under the infections threat. Run instant shield protection to safe your data and prevent internet access to your credit card information. Select this to run instant shield.”

“Antimalware Tool

External software tries to control variety of your system files. This may lead to breaking of some data in your system. Click here to protect remote access to your PC & delete these programs.”

It is recommended to use safe mode when removing the virus because Antimalware Tool will generally not be able to load in safe mode. To enter safe mode, restart the computer and press F8 multiple times before the Windows screen to bring up the boot options.

Boot Menu

The safe mode with networking option will allow the user to be able to use the internet in safe mode. Antimalware Tool can be removed by using the removal tool or by manually removing the virus.

View Antimalware Tool Files
View Antimalware Tool Keys

Common symptoms and characteristics of Antimalware Tool and other rogue security programs include:
1. Antimalware Tool is generally installed without user permission.
2. Antimalware Tool uses pop ups and fake virus scans to scare the user.
3. Various antivirus and system programs on the user’s computer will stop functioning.

Manual Antimalware Tool Removal – In order to manually remove Antimalware Tool, the processes associated with Antimalware Tool must be stopped, the files associated with the processes must be removed, and the registry entries must be corrected to the previous state before Antimalware Tool entered the computer.

Important: Before attempting to manually remove Antimalware Tool, we recommend that the user read through comments posted by other users on how they removed specific fake antivirus programs since many fake antivirus programs are similar. These comments can be found by clicking here. These comments may provide additional information which may be useful in removing Antimalware Tool. However, please use discretion since these specific comments pertain to other fake antivirus programs.

Stop Antimalware Tool Processes (Learn How To Do This)
[random letters].exe

Remove Antimalware Tool Files (Learn How To Do This)
C:\Program Files\Security Defender\[random letters].exe

Remove Antimalware Tool Registry Keys (Learn How To Do This)
HKEY_CURRENT_USER\Software\Antimalware Tool
HKEY_LOCAL_MACHINE\SOFTWARE\Antimalware Tool
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Antimalware Tool

Remove Antimalware Tool Startup Entry (Learn How To Do This)
[random letters].exe

Common Questions -
1. What is a computer virus? (Click Here To View)
2. How did I get this computer virus? (Click Here To View)
3. What common symptoms show that my computer may be infected? (Click Here To View)
4. What is a rogue security application? (Click Here To View)
5. What are some antivirus and antispyware programs which I can use to remove viruses and spyware? (Click Here To View)

If you have any questions or comments, please don’t hesitate to comment below. If you need any help with any of the steps, please don’t hesitate to comment below. We recommend that you follow our safety tips so that you can keep your computer clean Please Click Here to View Our Safety Tips.

Your feedback is very highly valued by others so please feel free to comment below. Please feel free to share a solution that you may have used to remove Antimalware Tool.

This entry was posted on Thursday, March 31st, 2011 at 10:45 pm and is filed under Malware Removal. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

One Response to “Antimalware Tool (AntimalwareTool) Virus Removal Guide”

Cake April 2nd, 2011 at 5:56 am

I’m using windows 7 and i’m unable to remove the files as there isnt the security defender in C:Program files

Leave a Reply